microsoft
/
CCF
зеркало из https://github.com/microsoft/CCF.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
4 271 коммит 10 Ветки 297 Теги 836 MiB
Граф коммитов

58 Коммитов

Автор SHA1 Сообщение Дата
Amaury Chamayou 09669ad836
Extend set_unprotected_header() to allow setting an empty header, and verify_receipt() to check claim_digest (#6607) 2024-11-04 11:47:28 +00:00
Max 35560e91c4
Remove secp256k as unsupported by symcrypt on Mariner (#6602) 2024-10-30 10:20:13 +00:00
Amaury Chamayou 6e08bcab4d
Misc documentation fixes (#6590) 2024-10-25 11:15:00 +00:00
Amaury Chamayou 1bf76ddd7e
Add API to allow setting unprotected headers (#6586) 
Co-authored-by: Max <maxtropets@gmail.com>
 2024-10-24 15:03:29 +00:00
Amaury Chamayou 94f65a2b85
Build on Azure Linux 3.0 (#6567) 2024-10-21 12:10:03 +00:00
Max b4ceb70997
COSE back-endorsements for previous service identities (#6510) 
Co-authored-by: Amaury Chamayou <amchamay@microsoft.com>
Co-authored-by: Amaury Chamayou <amaury@xargs.fr>
 2024-10-09 11:50:02 +00:00
Max b08724a000
COSE signatures over merkle root in the ledger (#6453) 2024-09-11 17:18:49 +00:00
Max 33cb6d4485
Replace RSASSA-PKCS1-v1_5 with RSA-PSS in crypto API (#6415) 
Co-authored-by: Amaury Chamayou <amaury@xargs.fr>
 2024-08-05 12:35:13 +00:00
Amaury Chamayou e30a3fab47
Add unit test to split_x509_cert_bundle (#6323) 2024-07-03 10:50:14 +01:00
Eddy Ashton 45328bf200
Re-namespace `::kv` to `ccf::kv` (#6312) 2024-06-28 15:42:49 +01:00
Eddy Ashton d973d75f5d
`ccf::crypto` namespace (#6298) 2024-06-27 16:53:08 +01:00
Max fbc400bce6
JWT issuer validation (#6175) 
Co-authored-by: Amaury Chamayou <amchamay@microsoft.com>
 2024-06-11 08:21:22 +00:00
Amaury Chamayou 8c07653961
Verify UVM endorsements signed with ECDSA (#6243) 2024-06-10 20:59:54 +01:00
Amaury Chamayou 68d5937e39
Service cert subject name is configurable (#5993) 2024-03-18 17:59:32 +00:00
Amaury Chamayou 78a64caa1e
Improvements to secret sharing following review (#6005) 2024-02-12 11:27:01 +00:00
Amaury Chamayou 3882284f14
Allow creating x25519 key pairs from JS (#5846) 2023-11-28 17:23:47 +00:00
Amaury Chamayou d224a32ecc
Replace Secret Sharing implementation (#5655) 2023-09-21 16:30:49 +01:00
Julien Maffre a9a979813e
Update `fmt` library from `9.1.0` to `10.1.1` (#5605) 2023-09-04 10:41:37 +00:00
Amaury Chamayou 84277950b4
Fix unsafe inline assembly usage (#5408) 2023-07-04 08:27:41 +01:00
Julien Maffre 623bf162d4
Update OpenSSL SHA digest API (#5336) 2023-06-12 11:23:19 +01:00
Takuro Sato 714feaf7b1
Suppress ASAN errors (#5089) 2023-03-10 08:55:59 +00:00
Julien Maffre e02dbdeaee
SEV-SNP ACI: Verify UVM endorsements (#4915) 2023-02-14 17:27:42 +00:00
Takuro Sato eac45b5c4c
Change static variables accessed concurrently to thread_local (#4980) 2023-02-09 15:27:25 +00:00
Julien Maffre a5ccb03e35
Add JWK to PEM converters (#4876) 2023-01-24 09:40:43 +00:00
Takuro Sato 139121a46d
Use p1363 encoding for sign() JS API with ECDSA (#4829) 2023-01-12 22:05:47 +00:00
Eddy Ashton 1ebcd07839
Remove unintended time checks from node-to-node validation (#4733) 2022-12-13 16:28:22 +00:00
Julien Maffre e638c5edca
Allow for SEV-SNP attestation report verification on non SEV-SNP platforms (#4679) 2022-12-06 22:49:42 +00:00
Takuro Sato 4ddc8dcb43
Miscellaneous improvements in crypto API (#4547) 2022-11-14 15:19:22 +00:00
Takuro Sato 394cd340a2
Add functions to convert EdDSA keys from PEM to JWK (#4524) 
Co-authored-by: Julien Maffre <42961061+jumaffre@users.noreply.github.com>
 2022-11-11 16:46:06 +00:00
Takuro Sato 05d35bd9ab
Add sign api to js crypt api (#4454) 2022-11-02 22:38:29 +00:00
Takuro Sato 12968a3b9f
Add eddsa with curve25519 to the JS crypto API (#4391) 2022-10-25 18:36:58 +00:00
Julien Maffre 742750583e
PEM to JWK converters (#4359) 2022-10-20 23:47:42 +01:00
Eddy Ashton 30a044eab8
Remove C++20 stubs from `nonstd.h` (#4375) 2022-10-20 12:57:27 +01:00
Amaury Chamayou 1bbf8886f3
Cose signing authn (#4306) 
* .

* wip

* wip

* wip

* wip

* tag=True does not do anything because it is default

* attach, detach...

* gov

* deps

* fix

* wip

* .

* wip

* wip

* checks

* wip

* .

* verifier

* verifier

* plug stuff in

* fmt

* .

* wip

* fix

* rest

* move test

* fix

* tweaks

* cmake

* cmake_fix

* schema

* Update include/ccf/common_auth_policies.h

Co-authored-by: Eddy Ashton <ashton.eddy@gmail.com>

* feedback

* span span span

* .

* Turn off colours in the governance test

Co-authored-by: Eddy Ashton <ashton.eddy@gmail.com>
 2022-10-18 10:01:54 +00:00
Takuro Sato 5c731c83f8
Add secp256k1 to the JS crypto API (#4347) 
* Add secp256k1 to the JS crypto API

* Fix lint

* Add missing parentheses

* Update CHANGELOG.md

Co-authored-by: Takuro Sato <takurosato@microsoft.com>
Co-authored-by: Amaury Chamayou <amchamay@microsoft.com>
 2022-10-14 17:21:59 +01:00
Dominic Ayre 454fba9b21
Use host_data for SNP verification (#4235) 2022-10-07 11:39:54 +00:00
Julien Maffre 47684aedeb
Fetch quote endorsements from AMD endpoint (#4277) 2022-10-03 13:18:34 +01:00
Andrea Piccione a88cfdf868
Expose HMAC through the Public C++ Crypto API (#4204) 2022-09-08 20:42:48 +00:00
Dominic Ayre 79dc84556c
Support SEV-SNP attestation in CCF (#4106) 2022-08-19 14:16:27 +01:00
Dominic Ayre 2595b521ae
Refactor PAL into a namespace with separate header files (#4148) 2022-08-18 13:16:28 +01:00
Eddy Ashton dafcd67024
Mitigations for potential stale reads from Legacy xAPIC (#4127) 2022-08-16 16:46:47 +00:00
Amaury Chamayou 5285c12a16
Upgrade fmtlib from 8.1.1 to 9.0.0 (#4122) 2022-08-15 14:01:53 +00:00
Christoph M. Wintersteiger 6d53029c93
Include missing header (#4058) 2022-07-21 17:55:27 +01:00
Christoph M. Wintersteiger c734789723
Add ACME client for globally endorsed TLS certificates (#3877) 
Co-authored-by: Amaury Chamayou <amaury@xargs.fr>
Co-authored-by: Maik Riechert <maik.riechert@arcor.de>
 2022-06-15 17:06:32 +00:00
Eddy Ashton 265ee5b85f
Ensure `crypto::Pem`s contain PEM encoded contents (#3918) 2022-06-14 15:24:56 +01:00
Eddy Ashton 722c8f971e
Remove null byte from PEM files (#3885) 2022-05-25 15:28:11 +01:00
Eddy Ashton 8e0b2c91cf
Restore public `ccf::Receipt` type (#3793) 2022-04-29 12:03:22 +00:00
Eddy Ashton 17f7b675fb
Use pointers for JSON schema ADL (#3795) 2022-04-27 11:01:22 +01:00
Christoph M. Wintersteiger c856048d34
Add service identity endorsements to historical receipts (#3679) 2022-03-28 14:29:31 +00:00
Christoph M. Wintersteiger 80d6037e7e
Add previous and next service identities to transition_service_to_open after recovery (#3624) 2022-03-10 15:10:56 +00:00